Security Advisory

CVE-2025-2895

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-30 14:39:43

Last updated 2025-08-24 11:36:47

Assigner ibm

State PUBLISHED

Description

IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, 2.3.4.1, and 2.3.4.1 iFix1 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victims Web browser within the security context of the hosting site.

← Browse all CVEs View on cve.org ↗